Apple's colorful mainstream flagship, starting at $749.
Apple Acquired Firmware Security Company LegbaCore Last November
Apple acquired firmware security company LegbaCore in November 2015, according to security researcher Trammell Hudson, who revealed the acquisition in his presentation at the 32C3 conference in December. LegbaCore's goal, according to founder Xeno Kovah, is "to help build systems that are as secure as we know how to make."
In November, Kovah and fellow LegbaCore founder Corey Kallenberg revealed that they had joined Apple as full-time employees. Just a couple days before that, LegbaCore's website announced that it would "not be accepting any new customer engagements", noting that the website would remain up "to serve as a reference for LegbaCore's past work."
LegbaCore had collaborated with Hudson on Thunderstrike 2, the first firmware worm to affect Mac computers. The malware is impossible to remove, resistant to both firmware and software updates. LegbaCore and Hudson had alerted Apple to Thunderstrike 2's vulnerabilities and Apple began work on fixes, issuing one in June 2015.
On Twitter, Kovah said that Apple began discussions with LegbaCore after the consultancy's presentation in summer 2015. It soon became clear to Kovah and Kallenberg that Apple had "some *very* interesting and highly impactful work" that the two could participate in. They were eventually convinced to wind down LegbaCore's existing contracts and begin work at Apple.
What did Apple hire us to do? We can’t say. :) Well, we can probably say something like “low level security” (I don’t know our job titles)
— Xeno Kovah (@XenoKovah) November 10, 2015
While LegbaCore is a security consultancy firm that doesn't own any specific technology, it's likely Apple will use Kovah and Kallenberg's talent and knowledge to help improve firmware and software security in future iterations of Apple's various hardware and software products. LegbaCore's work includes research on Thunderstrike 2, "dead code" for BIOS attacks and more.
(Thanks, Jost!)
[ 63 comments ]
Top Rated Comments
(View all)
35 months ago
You know where firmware security would be *really* critical?
A car.
Just sayin'.
Of course it matters everywhere else too...
A car.
Just sayin'.
Of course it matters everywhere else too...
35 months ago
This rocks. If there is one thing Apple can do to distance itself from the competition (Google and Microsoft where your the product or your the product and shared with the NSA) its going all in on giving users privacy and security.
Apple will need an extended focus on this (the security / privacy environment will only get worse) so this is a good sign upper management really gets it. Go Apple - this is how you make sure I get a Mac next time I'm replacing a PC.
Apple will need an extended focus on this (the security / privacy environment will only get worse) so this is a good sign upper management really gets it. Go Apple - this is how you make sure I get a Mac next time I'm replacing a PC.
35 months ago
This rocks. If there is one thing Apple can do to distance itself from the competition (Google and Microsoft where your the product or your the product and shared with the NSA) its going all in on giving users privacy and security.
Apple will need an extended focus on this (the security / privacy environment will only get worse) so this is a good sign upper management really gets it. Go Apple - this is how you make sure I get a Mac next time I'm replacing a PC.
Plus now they have to worry about the government trying to backdoor their ass for the next few decades. No pun intended.
35 months ago
With that image it makes them look like they're a conglomerate for some jailbreaking organization. I Like it.
No, I think it means Apple is now being run by the Free Masons.
35 months ago
1. Create exploit
2. Publicize exploit
3. ???
4. Profit
if they do nothing they release the exploit. Then no profit.
35 months ago
With that image it makes them look like they're a conglomerate for some jailbreaking organization. I Like it.
35 months ago
Creepy logo.
Reminds me of something the US Department of Defence would come up with...
Reminds me of something the US Department of Defence would come up with...
35 months ago
"The malware is impossible to remove, resistant to both firmware and software updates"
How can a bug be resistant to firmware updates?
How can a bug be resistant to firmware updates?
35 months ago
Acquihire in its most pure form. I don't think it was done with any specific project in mind, but rather the importance of making all systems as secure as possible. The question I have is will Apple keep them off-campus or find them an office at one Infinity. That might give us a better indication of how Apple intends to use their insight; i.e., part of a design team or as quality control.
[ Read All Comments ]
One of Apple's Lexus SUVs outfitted with autonomous driving equipment was involved in a minor car accident on October 15 while being driven in manual mode, and the accident in question does not...
For this week's giveaway, we've teamed up with WaterField Designs to offer MacRumors readers a chance to win a Tech Folio or Tech Folio Plus, which are cases that are designed for the 10.5...
In macOS Mojave, Apple introduced a new notarization feature for apps distributed outside of the Mac App Store that's designed to further protect users from malicious Mac apps.
Apple is...
Google Chrome now enables picture-in-picture as a default setting on Mac, Windows, and Linux computers as of Chrome 70. If you are up-to-date and watching a compatible video in the Chrome web...
Today is iPhone XR pre-order day, and like with previous iPhone models you are able to pre-order the XR from all of the major cellular carriers, most of which are offering promotions. If you...
The document scanning feature found in Apple's stock Notes app is a great way to digitize all sorts of print-based content, from letters and receipts to recipes and photos.
If you often...
Feral today announced that the Company of Heroes 2: Master Collection is now available on the Mac App Store.
Originally developed by Relic Entertainment and generally regarded as the definitive...
Alongside the iPhone XR, Apple today released a new 0.3m Magnetic Apple Watch Charger that's equipped with a USB-C connector for the first time.
At $29, the USB-C version of the Apple...
